Sr. CIAM Engineer

Job Description Summary

Designs and builds the organization's cyber security systems and infrastructure.

Job Description

This position follows our hybrid workstyle policy: Expected to be in a Raymond James office location a minimum of 10-12 days a month.

Please note: This role is not eligible for Work Visa sponsorship, either currently or in the future.

Summary:

Driving secure, seamless customer experiences through advanced identity orchestration, mobile-first authentication, and fraud-aware CIAM solutions.

Experience:

• 6–10+ years of experience in Identity and Access Management, including 3+ years focused on CIAM platforms and technologies

• Strong experience with Ping Identity, DaVinci, PingOne, or equivalent customer IAM journey orchestration tools.

• Integration of behavioral biometrics and fraud risk signals from vendors such as ThreatMetrix, BioCatch, or Ping Risk.

• Hands-on experience with mobile application authentication, including Passkeys, push MFA, biometric enrollment, and in-app PKI.

• Understanding of OAuth2.0, OpenID Connect, SAML, and token lifecycle management at scale for B2C.

• Experience integrating IAM with customer-facing portals, mobile apps, and API-based ecosystems.

• Exposure to omnichannel verification workflows, including fallback for call-center flows and manual identity verification.

• Familiarity with mobile SDK security, root/jailbreak detection, and secure key storage.

• Knowledge of fraud detection and prevention practices: IP velocity checks, device fingerprinting, geolocation anomalies.

• Ability to direct and guide developers in securely implementing front-end and back-end integrations with IAM systems.

• Ability to direct and guide Application owners in securely integrating 3rd party applications with IAM systems.

​

Responsibilities:

• Design, build, and enhance customer-facing identity journeys using tools like Ping DaVinci and API-first frameworks.

• Work with fraud analysts and developers to integrate risk signals and decision engines into login and registration flows.

• Serve as technical lead for mobile-first authentication projects, ensuring strong UX and high assurance.

• Partner with mobile engineering teams to embed IAM SDKs and ensure secure mobile app posture.

• Develop strategies for linkless authentication and secure session continuity for contact centers.

• Provide subject matter expertise for identity proofing, registration, progressive profiling, and delegated access use cases.

• Maintain documentation and guidance for customer IAM APIs, authentication methods, and security practices.

• Lead or contribute to large-scale IAM transformation initiatives in support of business expansion or regulatory mandates.

Education

Bachelor’s: Computer and Information Science, Bachelor’s: Information Technology, High School (HS) (Required)

Work Experience

General Experience - 3 to 6 years

Certifications

SANS Offensive Security Certification - SANS Institute

Travel

Less than 25%

Workstyle

Hybrid

At Raymond James our associates use five guiding behaviors (Develop, Collaborate, Decide, Deliver, Improve) to deliver on the firm's core values of client-first, integrity, independence and a conservative, long-term view. 

We expect our associates at all levels to:
•  Grow professionally and inspire others to do the same
•  Work with and through others to achieve desired outcomes
•  Make prompt, pragmatic choices and act with the client in mind
•  Take ownership and hold themselves and others accountable for delivering results that matter
•  Contribute to the continuous evolution of the firm

At Raymond James – as part of our people-first culture, we honor, value, and respect the uniqueness, experiences, and backgrounds of all of our Associates.  When associates bring their best authentic selves, our organization, clients, and communities thrive. The Company is an equal opportunity employer and makes all employment decisions on the basis of merit and business needs. 

#LI-TC1